Описание
The WooMulti WordPress plugin through 17 does not validate a file parameter when deleting files, which could allow any authenticated users, such as subscriber to delete arbitrary files on the server.
EPSS
Процентиль: 20%
0.00064
Низкий
7.3 High
CVSS3
Дефекты
Связанные уязвимости
CVSS3: 7.3
github
около 2 месяцев назад
The WooMulti WordPress plugin through 17 does not validate a file parameter when deleting files, which could allow any authenticated users, such as subscriber to delete arbitrary files on the server.
EPSS
Процентиль: 20%
0.00064
Низкий
7.3 High
CVSS3